Create a Disaster-Ready Ransomware Recovery Plan

Don’t let ransomware catch you off guard.

Onsite Workshop

If you do not plan for a ransomware incident, you are planning to fail at responding and recovering your systems and your data. The downsides of not preparing include:

  • Lengthy operational downtime
  • Expensive consulting and third-party services
  • Potential loss of entire system or highly sensitive data
  • Regulatory fines

Ransomware is malware and many conventional information security best practices can defend against a ransomware attack. You can’t prevent ransomware, but you can respond better. By completing this workshop, you can:

  • Make informed decisions on how to respond and recover from a ransomware incident.
  • Mitigate the impact of ransomware with a security incident response plan that includes disaster recovery.
  • Have a prioritized roadmap to guide your organization in how to prepare for and defend against modern ransomware variants.

Module 1: Assess Ransomware Readiness

The Purpose

  • To assess the overall readiness of your security program to respond to a ransomware incident.

Key Benefits Achieved

  • A strategic insight into your security’s obligations, scope, and risk tolerance
  • A gap analysis of current ransomware incident management maturity
  • A list of highly critical systems and applications

Activities: Outputs:
1.1 Complete high-level overview of activities and outcomes.
1.2 Establish your obligations, data protection goals, and risk tolerance.
  • Security Scope and Obligations Statement
1.3 Assess current ransomware incident management maturity.
  • Ransomware Incident Management Maturity Assessment
1.4 Identify mission-critical business activities and supporting systems and applications.
  • Applications and Dependency Mapping
1.5 Select three key applications to be the focus of this workshop and identify their dependencies.

Module 2: Determine the Business Impact

The Purpose

  • A business impact analysis enables you to identify appropriate spend levels, maintain executive support, and prioritize DR planning for a more successful outcome.

Key Benefits Achieved

  • An understanding of the overall business impact caused by a ransomware incident
  • Defined RTOs and RPOs for highly critical systems and applications

Activities: Outputs:
2.1 Define an objective scoring scale to indicate different levels of impact.
  • DRP Business Impact Analysis Tool
2.2 Estimate the impact of downtime.
2.3 Determine acceptable RTO/RPO targets for systems and applications based on the business impact of downtime.

Module 3: Develop a Response and Recovery Plan

The Purpose

  • Develop the necessary incident response management workflows to mitigate the impact of a ransomware incident.

Key Benefits Achieved

  • Current state assessment of ransomware incident management workflows
  • Completed runbooks for ransomware incident for select systems and applications

Activities: Outputs:
3.1 Conduct a tabletop exercise to determine current ransomware recovery procedures to identify gaps between current and desired capabilities.
  • Ransomware Response Workflow – Current State
3.2 Document desired features of future state and prioritize initiatives.
3.3 Develop runbooks for ransomware for selected applications.
  • Ransomware Incident Response Runbooks for Selected Applications

Module 4: Build a Roadmap to Close Gaps

The Purpose

  • Prioritize initiatives and build out a roadmap to develop your overall ransomware recovery plan.

Key Benefits Achieved

  • An overall understanding of your organization’s ransomware recovery strategic plan
  • An understanding of the preventative measures required to meet your organization’s information security risk tolerance level

Activities: Outputs:
4.1 Outline preventative measures and technologies for ransomware.
4.2 Create a project roadmap for identified ransomware recovery projects.
  • Ransomware Incident Management Roadmap
4.3 Develop strategic summary document for executive review.
  • Ransomware Strategic Plan Summary Document
4.4 Complete workshop executive presentation and debrief.

Workshop icon Book Your Workshop

Onsite Workshops offer an easy way to accelerate your project. If you are unable to do the project yourself, and a Guided Implementation isn’t enough, we offer low-cost onsite delivery of our Project Workshops. We take you through every phase of your project and ensure that you have a road map in place to complete your project successfully.

Book a Workshop View Blueprint
Visit our COVID-19 Resource Center and our Cost Management Center
Over 100 analysts waiting to take your call right now: 1-519-432-3550 x2019
GET HELP Contact Us